|
You are here |
fedd.it | ||
| | | | |
educatedguesswork.org
|
|
| | | | | [AI summary] This article discusses advanced password security mechanisms, focusing on technologies like two-factor authentication, password authenticated key agreement, and public key authentication to enhance web login security beyond traditional passwords. | |
| | | | |
dadrian.io
|
|
| | | | | Large-scale quantum computers are capable of breaking all of the common forms of asymmetric cryptography used on the Internet today. Luckily, they don't exist yet. The Internet-wide transition to post-quantum cryptography began in 2022 when NIST announced their final candidates for key exchange and signatures in the NIST PQC competition. There is plenty written about the various algorithms and standardization processes that are underway. The conventional wisdom is that it will take a long time to transit... | |
| | | | |
simplex.chat
|
|
| | | | | [AI summary] SimpleX Chat announces the release of version 4.2 and shares the results of a security audit by Trail of Bits, detailing identified vulnerabilities and new privacy-enhancing features. | |
| | | | |
labanskoller.se
|
|
| | | You probably use an "authenticator app" such as Google Authenticator to enable two-step verification (sometimes called two-factor authentication, 2FA, or multi-factor authentication, MFA) for an online account. The method is called Time-Based One-Time Password Algorithm (TOTP) and is standardized in RFC 6238. In October 2017 when I evaluated HashiCorp Vault for generating and storing TOTP secrets for a system at work I realized that the Android version and iOS version of Google Authenticator differed a lot when it comes to which modes are supported. | ||